Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/8rcoRDJUMCu7NJJygXFgV9JJRIo.roa
File: 8rcoRDJUMCu7NJJygXFgV9JJRIo.roa (raw, json)
Hash identifier: hA35xlodgJ3k1EMeU0zdXUsnVM5l1LQD66QRKuH6t3M=
Subject key identifier: F2:B7:28:44:32:54:30:2B:BB:34:92:72:81:71:60:57:D2:49:44:8A
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 01857295A0F70E2A0BF6A7B88FBD40CA865B
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/8rcoRDJUMCu7NJJygXFgV9JJRIo.roa
Signing time: Mon 02 Jan 2023 13:04:46 +0000
ROA not before: Mon 02 Jan 2023 13:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 139.28.27.0/24 maxlen: 24
139.28.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:a0:f7:0e:2a:0b:f6:a7:b8:8f:bd:40:ca:86:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jan 2 13:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2b728443254302bbb34927281716057d249448a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:b0:6e:52:97:c6:fd:1d:3b:17:3c:86:0a:
90:be:0a:b9:ae:2f:bc:11:8d:a3:83:fa:ea:fd:46:
40:b6:f4:a7:b5:ed:d3:19:7b:71:15:2b:e1:36:b0:
48:c1:7c:a4:ea:c6:3d:48:ff:01:cf:69:98:a4:13:
5f:3a:80:ee:cd:6c:43:21:6a:d4:39:fa:2b:61:94:
d2:73:0e:be:de:59:ca:5e:e6:a0:66:6c:9d:98:37:
d8:3d:91:eb:ac:e6:74:68:2c:16:ff:87:46:6a:60:
c9:81:fd:87:8f:5e:ee:76:1e:36:e4:7b:94:95:0d:
39:98:48:00:26:63:57:13:09:35:88:ea:aa:4f:5e:
4a:d4:94:98:46:fa:17:bb:e4:4b:b0:f0:f8:bb:4f:
d2:29:47:97:63:a5:d7:44:9a:c4:17:bd:3f:09:fd:
16:f1:50:17:91:eb:19:d4:f2:fc:0d:8d:60:b1:39:
18:14:2f:c3:5c:d6:e5:16:8a:a4:93:17:48:da:58:
a0:68:0a:37:93:57:ef:5e:fa:05:79:05:f4:78:e7:
10:90:34:e5:e7:ce:45:2d:0e:b9:56:88:1c:24:7a:
31:55:bf:55:27:29:7c:67:53:d7:0a:c7:83:50:bb:
31:3e:63:5c:b8:68:b1:b1:9f:4e:a1:ee:f5:2b:4e:
b4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B7:28:44:32:54:30:2B:BB:34:92:72:81:71:60:57:D2:49:44:8A
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/8rcoRDJUMCu7NJJygXFgV9JJRIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.26.0/23
Signature Algorithm: sha256WithRSAEncryption
41:d6:e6:8e:a5:2a:ee:9d:62:76:57:d4:c6:4d:fd:e8:de:9f:
c9:11:a5:e8:42:27:9c:be:10:ca:d3:91:f5:d7:1b:97:ef:53:
8c:47:42:42:d2:9e:0e:dc:3e:55:46:fb:41:5d:c7:9e:a8:c7:
be:80:65:62:da:84:30:a9:5d:46:e0:15:67:2d:d8:7f:33:e9:
2f:8e:a3:98:7f:41:a5:0c:6b:1c:dd:1a:3c:fb:f4:60:f2:73:
7f:2c:b9:af:07:f5:21:50:a3:1f:3d:30:61:a9:20:27:3b:db:
9e:36:ef:dd:f4:86:f3:be:1b:b8:6d:87:f3:f5:b7:c2:c6:5b:
b0:18:20:52:81:93:80:ad:3d:2d:30:98:14:47:b7:4f:4e:c3:
fd:f9:ce:2b:54:08:a7:9e:b9:73:be:86:d9:ce:be:33:93:27:
2f:8d:a7:6f:02:87:c9:cc:13:d3:03:1b:56:10:1f:03:fc:d2:
35:a2:88:c3:3b:42:1d:72:81:e6:3f:47:88:15:a3:6a:c3:82:
dd:d7:53:7b:45:60:49:79:e4:6a:8c:5a:aa:b8:89:94:2b:e8:
5c:06:cb:42:36:54:97:33:14:28:41:55:6c:21:0c:46:91:ee:
32:c0:0a:0c:e5:60:1a:8f:65:c0:45:0d:0d:c3:08:ce:e9:e5:
0a:40:86:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:33 2023 by rpki-client on console-fra.rpki-client.org